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Problem  Statement 


Insider 

Cyber 

Attacks 


Lack  of  resiliency: 

Inability  to  stop  attack  spread 


Lack  of  agility: 

Inability  to  maneuver  and  avoid  attack 


Mission 

failure 


Lack  of  assured 
effective  missions 

Missions  impaired  by 
cyber  attacks 


T  Kinetic 
mission 


Lack  of  trustworthiness: 

Can’t  trust  global  supply  chain 
for  mission-critical  components 
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Desired  End  State 


Mission 

success 


^  Evaluation  ~ 
of  cyber  vs.  kinetic 
\  options  / 


Agile  cyber  operations: 

Maneuvering  to  avoid  attacks 

- V  ^ 


Assured  effective  missions: 

Missions  success  is  ensured 


Diverting  to 
Honeynet 

* 


Attack 
deflected  & 
absorbed 


Resilient  defenses: 

Ability  to  deflect,  resist 
and  absorb  attacks 


p 

/  '  \  / 

0 

Insider 

Cyber 

Attac, 


Kinetic 

mission 


Attacker 

neutralized 


Trusted  foundations: 

Trusted  design,  verification,  and 
fabrication  of  integrated  circuits; 
Trusted  boot  and  secure  attestation 


APP 


BIOS 


Trusted  boot  Verified  ICs 
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Key  Parameter: 
Work  Factor  Ratio 


•  Missions 

-  Kinetic,  cyber,  and  combined  missions  will 
have  a  cyber  dependency 

•  Infrastructure 

-  Any  element  of  the  cyber  infrastructure  may 
be  compromised  and  manipulated 

-  DoD  will  continue  to  leverage  commercial 
products  and  services  we  do  not  own  or 
control 

-  DoD  infrastructure  defies  establishing  an 
all-encompassing  static  perimeter 


Challenge: 

Increase  Adversary  /  Defender 
Relative  Work  Factor  Over  Time 
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Four  Major  10  Year  Objectives 


Assuring 

Effective  Missions 


Assess  and  control  the  cyber  situation  in  mission  context 


Agile 

Operations 


Dynamically  reshape  cyber  systems  as  conditions/goals  change,  to 
escape  harm 


Resilient 

Infrastructure 


Withstand  cyber  attacks,  and  sustain  or  recover  critical  functions 


Trust 


Establish  known  degree  of  assurance  that  devices,  networks,  and 
cyber-dependent  functions  perform  as  expected,  despite  attack  or 
error 
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Metrics 
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Trust 

Technical  Challenges  and  Research  Opportunities 


and  forensics 

Trust  Foundations 


•  Scalable  reverse  engineering  and  analysis 

•  Trust  establishment,  propagation,  and  maintenance  techniques 

•  Measurement  of  trustworthiness 

•  Trustworthy  architectures  and  trust  composition  tools 
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Resilient  Architectures  Resilient  Algorithms  and  Protocols 


•  Resiliency  for  operational  systems  Code-level  software  resiliency 

•  Mechanisms  to  compose  resilient  systems  from  I.  Network  overlays  and  virtualization 

brittle  components  ■ 

•  Integration  of  sensing,  detection,  response,  and  I*  Network  management  algorithms 

recovery  mechanisms  B  ..  , 

■  •  Mobile  computing  security 

•  Secure  modularization  and  virtualization  of  ■ 

nodes  and  networks  ■ 

•  Resiliency-specific  modeling  and  simulation 
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Agile  Operations 

Technical  Challenges  and  Research  Opportunities 


Adversary  is 
contained  within 
honeynet  for  further 
observation 


Reallocation  of 
mission-critical 
functions 


Residual  effect 
of  persistent 
adversary 


Re-route  adversary  to 
honeynet 


Exposed  nodes  of  operational 
network 


Attackers 


Autonomic  Cyber  Agility  Cyber  Maneuver 


•  Techniques  for  autonomous 
reprogramming,  reconfiguration,  and 
control  of  cyber  components 

•  Machine  intelligence  and  automated 
reasoning  techniques  for  executing  courses 
of  action 


•  Distributed  systems  architectures  and  service 
application  polymorphism 

•  Network  composition  based  on  graph  theory 

•  Distributed  collaboration  and  social  network 
theory 
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Assuring  Effective  Missions 

Technical  Challenges  and  Research  Opportunities 


Mission  Situational  Awareness 


Cyber  Mission  Control 


•Techniques  for  mapping  assets  and  describing  dependencies  between 
mission  elements  and  cyber  infrastructure 

•  Techniques  for  course  of  action  development  and  analysis 

•  Cyber  effects  assessment 
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Open  Broad  Agency  Announcements 


•  Army  Research  Office  (ARO) 

-  Solicitation  #:W91 1 NF-07-R-0003-04;  BAA  for  Basic  and  Applied  Research,  Section  5.3 

•  Army  Research  Laboratory  (ARL) 

-  Solicitation  #:W91 1 NF-07-R-0001  -05;  BAA  for  Basic  and  Applied  Research,  Section  1 

•  Communications  and  Electronics  Research,  Development,  and  Engineering  Center  (CERDEC) 

-  Solicitation  #:  W15P7T-08-R-P41 5 


Office  of  Naval  Research  (ONR) 

-  Solicitation  #:  ONRBAA  12-001 ,  Code  31  Section  1 

Naval  Research  Laboratory  (NRL) 

-  Solicitation  #:  BAA-N001 73-02,  Section  55-11-02  (Mathematical  Foundations  of  Computing) 

-  Solicitation  #:  BAA-N001 73-02,  Section  55-11-03  (High  Assurance  Engineering  and  Computing) 


Air  Force  Office  of  Scientific  Research  (AFOSR) 

-  Solicitation  #:  AFOSR-BAA-201 0-1 ,  Section  c.  1 2 

Air  Force  Research  Laboratory  (AFRL) 

-  Solicitation  #:  BAA-1 0-09-RIKA  (Cross  Domain  Innovative  Technologies) 

-  Solicitation#:  BAA-1 1-01-RIKA (Cyber  Assurance  Technologies) 

Defense  Advanced  Research  Projects  Agency  (DARPA) 

-  Solicitation  #:  DARPA-BAA-1 1-63  (Automated  Program  Analysis  for  Cyber  Security 

-  Solicitation  #:  DARPA-BAA-1 0-83  (Strategic  Technologies  Office  BAA) 

-  Solicitation  #:  DARPA-BAA-1 1-34  (Information  Innovation  Office  BAA) 

-  Solicitation  #:  DARPA-RA-1 1  -52  (Cyber  Fast  T rack) 

-  Solicitation  #:  DARPA-SN-1 1-55  (Future  Directions  in  Cyber  Security) 


Small  Business  Innovation 
Research  Announcements 

http://www.  dodsbir.net 


NSA  Contact  Information 

(No  Open  BAAs) 

Acquisition  Resource  Center 
Phone:  (443)-479-9572 
E-mail:  nsaarc@nsaarc.net 

Office  of  Small  Business  Programs 
Phone:  (443)-479-9572 
E-mail:  nsaarc@nsaarc.net 
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Technology  Challenge  Summary 

POC:  Dr.  Steven  E.  King 
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